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DETAILED ACTION 

1 . Claims 71-100 have been examined. 

Continued Examination Under 37 CFR LI 14 

2. A request for continued examination under 37 CFR 1.114, including the fee set forth in 
37 CFR 1 .17(e), was filed in this application after final rejection. Since this application is 
eligible for continued examination under 37 CFR 1.114, and the fee set forth in 37 CFR 1.17(e) 
has been timely paid, the finality of the previous Office action has been withdrawn pursuant to 
37 CFR 1.114. Applicant's submission filed on 5/9/07 has been entered. 

Claim Rejections - 35 USC § 103 

3. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in 
section 102 of this title, if the differences between the subject matter sought to be patented and the prior art are 
such that the subject matter as a whole would have been obvious at the time the invention was made to a person 
having ordinary skill in the art to which said subject matter pertains. Patentability shall not be negatived by the 
manner in which the invention was made. 

4. Claims 71-93 and 101 are rejected under 35 U.S.C. 103(a) as being unpatentable over 
Juitt et al. U.S. Pat. No. 7042988 (hereinafter Juitt) in view of Weatherspoon et al. U.S. Pat. No. 
7174564 (hereinafter Weatherspoon). 

5. As per claim 71, Juitt discloses a system, comprising: an authentication server disposed on a 
network (Juitt: figure 1 A: authentication server 125); a switch coupled to the network and 
communicatively coupled to the authentication server via the network (Juitt: figure 1 A: gateway server 
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120); and an access point communicatively coupled to the switch (Juitt: figure 1 A: access points 102a-c); 
wherein the switch is configured to be the authenticator for the access point and is configured to acheck if 
rogue access point (Juitt: column 8 lines 39-42: authentication between gateway server and access points; 
column 14 lines 4-11: gateway server can detect rogue access points by utilizing MAC of access points); 
wherein the access point is configured to be the authenticator for a wireless client, the access point 
communicates with the authentication server using the secure communication session established with the 
switch (Juitt: column 8 lines 39-42); wherein the access point is configured to send a message to the 
switch comprising data representative of the wireless client responsive to the authenticated wireless client 
successfully authenticating with the authentication server (Juitt: column 9 lines 27-52: forwarding request 
to the gateway server... request can include identifier); and wherein the access point is configured to 
forward all communications received from the authenticated wireless client to the switch responsive to the 
authenticated wireless client successfully authenticating with the authentication server (Juitt: figure 1 A: 
all requests have to go through access points to gateway server; figure 2: provide access upon 
authentication). Juitt does not explicitly disclose the switch is configured to be the authenticator for the 
access point and configured to authenticate the access point with the authentication server and establish 
secure communication with authentication server. However, Weatherspoon discloses that the 
authentication server authenticates the access point prior to authenticate the wireless device 
(Weatherspoon: column 5 lines 13-36). It would have been obvious to one having ordinary skill in the art 
to utilize the gateway server as the switch between the authentication server and access point and allow 
communication between wireless devices and network resources upon authentication of both access point 
and wireless devices. Therefore, it would have been obvious to one having ordinary skill in the art at the 
time of applicant's invention to combine the teachings of Weatherspoon within the system of Juitt 
because it prevents rogue access points to gain access to wired LAN (Weatherspoon: column 4 lines 51- 
55). 
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6. As per claim 72, Juitt discloses the system according to claim 71 . Juitt further discloses the switch 
comprises a table of authorized users, wherein the switch updates the table of authorized users with the 
medium access control address of the authenticated wireless client (Juitt: column 1 1 lines 19-43: internal 
authentication database; column 13 lines 6-13: MAC). 

7. As per claim 73, Juitt discloses the system according to claim 71 . Juitt further discloses the switch 
comprises a table of authorized users, wherein the switch updates the table of authorized users with the 
medium access control list, the quality of service parameters and the access control list of the 
authenticated wireless client (Juitt: column 1 1 lines 19-43: maintains a internal database for 
authentication of authenticated users). 

8. As per claim 74, Juitt discloses the system according to claim 71 . Juitt further discloses wherein a 
session key is generated for subsequent communications between the authenticated wireless client and the 
access point responsive to the authenticated wireless client successfully authenticating with the 
authentication server (Juitt: column 7 lines 39-41: WEP data encryption). 

9. As per claim 75, Juitt discloses the system according to claim 7 1 . Juitt further discloses the 
system comprising the authentication server is responsive to establish a message authentication check key 
for the secure communication session between the switch and the access point (Juitt: column 6 lines 38- 
41 : 802.1 1 protocol supports message authentication code for communications; column 7 lines 36-42: 
gateway server and access points can communicate using any well known communication protocols used 
between access points and wireless clients such as the 802.1 1). 
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10. As per claim 76, Juitt discloses the system according to claim 75. Juitt further discloses wherein 
the message authentication check key uniquely identifies the access point to the switch (Juitt: column 7 
lines 39-41). 

11. As per claim 77, Juitt discloses the system according to claim 75. Juitt further discloses the system 
comprising: 

the access point is configured to send the data representative of the authenticated wireless 
client signed with the message authentication check key (Juitt: column 7 lines 36-41; column 8 lines 39- 
44: communication between access point and gateway server is protected); and 

the switch is responsive to receiving the data representative of the authenticated wireless 
client to verify the message authentication check key (Juitt: column 8 lines 39-44: authenticate packets 
from access points). 

12. As per claim 78, Juitt discloses the system according to claim 77. Juitt further discloses the system 
comprising: 

the switch is configured to maintain a database containing authorized media access 
control addresses (Juitt: column 1 1 lines 19-44: internal database; column 13 lines 10-12: authentication 
information includes MAC); and 

the switch is configured to verily the message with the data representative of the 
authenticated wireless client was sent by the access point by verifying the media access control 
address of the access point (Juitt: column 14 lines 1-11: detect rogue access points by looking for MAC). 

1 3. As per claim 79, Juitt discloses the system according to claim 78. Juitt further discloses the system 
comprising: 
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the data representative of the authenticated wireless client comprises a media access 
control address for the authenticated wireless client (Juitt: column 9 lines 25-42: access point forward 
requests to gateway server... request include identifier and authentication information; column 13 lines 
10-12: authentication information includes MAC address); 

the switch is responsive to receiving the data representative of the authenticated wireless 
client to store the media access control address for the authenticated wireless client in the 
database (Juitt: column 1 1 lines 25-44: internal authentication database maintains authentication 
information of authenticated users); and 

the switch is responsive to receiving packets from the authenticated wireless client forwarded by 
the access point to verify the media access control address of the packets from the authenticated wireless 
client with the database (Juitt: column 13 lines 6-12). 

14. As per claim 80, Juitt discloses the system according to claim 71 . Juitt further discloses wherein 
the secure communication session is established between the switch and the access point prior to 
authenticating the authenticated wireless client (Juitt: column 14 lines 1-1 1). 

15. As per claim 81, Juitt discloses the system according to claim 71. Juitt further discloses the 
system comprising: the switch maintains a database of authenticated supplicants (Juitt: column 1 1 lines 
30-44); and the switch stores the media access control of the access point in the database responsive to the 
access point successfully authenticating with the authentication server (Juitt: column 13 lines 10-12). 

1 6. As per claim 82, Juitt discloses a system, comprising: an authentication server disposed on a 
network (Juitt: figure 1 A: authentication 125); a first authenticator communicatively coupled to the 
authentication server via the network (Juitt: figure 1 A: gateway server 120); and a first supplicant 
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communicatively coupled to the first authenticator (Juitt: figure 1 A: access points 102a-c); wherein the 
first supplicant is configured to authenticate with the authentication server and establish a secure 
communication session with the first authenticator (Juitt: column 14 lines 1-11); wherein the first 
supplicant is configured to function as an authenticator for a second supplicant communicatively coupled 
to the first supplicant (Juitt: figure I A: access points 102 and mobile device 100); wherein the first 
supplicant is configured to send a message with data representative of the second supplicant to the first 
authenticator responsive to the second supplicant successfully authenticating with the authentication 
server (Juitt: column 9 lines 27-52: forwarding request to the gateway server... request can include 
identifier); and wherein the first supplicant is configured to forward all communications received from the 
second supplicant to the first authenticator responsive to the second supplicant successfully authenticating 
with the authentication server (Juitt: figure 1 A: all requests have to go through access points to gateway 
server; figure 2: provide access upon authentication). 

17. As per claim 83-93 and 101, claims 83-93 and 101 disclose the same limitations as claims 71-82. 
Therefore, claims 83-100 are rejected based on the same reasons set forth above in rejecting claims 71-82. 

Response to Arguments 

18. Applicant's arguments with respect to claim 71-93 and 101 have been considered but are 
moot in view of the new ground(s) of rejection. 

Conclusion 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Shin-Hon Chen whose telephone number is (571) 272-3789. The 
examiner can normally be reached on Monday through Friday 8:30am to 5:30pm. 
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If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Ayaz Sheikh can be reached on (571) 272-3795. The fax phone number for the 
organization where this application or proceeding is assigned is 571-273-8300. 

Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). If you would 
like assistance from a USPTO Customer Service Representative or access to the automated 
information system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 
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